SC-200 · Question #431
SC-200 Question #431: Real Exam Question with Answer & Explanation
Sign in or unlock SC-200 to reveal the answer and full explanation for question #431. The question stem and answer options stay visible for context.
Question
You have a Microsoft 365 subscription. The subscription contains 500 devices that are onboarded to Microsoft Defender for Endpoint. You have an Azure subscription that contains a Microsoft Sentinel workspace. You need to run a pilot on 50 devices that will remediate threats automatically. The solution must meet the following requirements: - Minimize the impact on devices that are excluded from the pilot. - Minimize administrative effort. What should you configure first?
Options
- Aa playbook
- Ban endpoint security policy
- Ca device group
- Dan automation rule
Unlock SC-200 to see the answer
You've previewed enough free SC-200 questions. Unlock SC-200 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.